<!DOCTYPE html>
<html>
<head>
	<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
	<meta name="generator" content="ApiGen 2.8.0" />
	<meta name="robots" content="noindex" />

	<title>File orr_lib/sys/OrSec.php | orr-projects</title>

	<script type="text/javascript" src="resources/combined.js?394153670"></script>
	<script type="text/javascript" src="elementlist.js?2798953594"></script>
	<link rel="stylesheet" type="text/css" media="all" href="resources/style.css?3505392360" />

</head>

<body>
<div id="left">
	<div id="menu">
		<a href="index.html" title="Overview"><span>Overview</span></a>


		<div id="groups">
			<h3>Packages</h3>
			<ul>
				<li><a href="package-Example.html">Example</a>
						</li>
				<li class="active"><a href="package-None.html">None</a>
						</li>
				<li><a href="package-Or.Lib.html">Or!Lib</a>
						</li>
			</ul>
		</div>

		<hr />


		<div id="elements">
			<h3>Classes</h3>
			<ul>
				<li><a href="class-my.html" class="invalid">my</a></li>
				<li><a href="class-my_page.html" class="invalid">my_page</a></li>
				<li><a href="class-OrAccordionAjax.html">OrAccordionAjax</a></li>
				<li><a href="class-OrAjax.html" class="invalid">OrAjax</a></li>
				<li><a href="class-OrButton.html">OrButton</a></li>
				<li><a href="class-OrCheckbox.html">OrCheckbox</a></li>
				<li><a href="class-OrClip.html">OrClip</a></li>
				<li><a href="class-OrContent.html">OrContent</a></li>
				<li><a href="class-OrControls.html">OrControls</a></li>
				<li><a href="class-OrDb.html">OrDb</a></li>
				<li><a href="class-OrDbForm.html">OrDbForm</a></li>
				<li><a href="class-OrDbFormList.html">OrDbFormList</a></li>
				<li><a href="class-OrDbFormListTotalFunction.html">OrDbFormListTotalFunction</a></li>
				<li><a href="class-OrDbFrmCrossTab.html">OrDbFrmCrossTab</a></li>
				<li><a href="class-OrDbFrmForm.html">OrDbFrmForm</a></li>
				<li><a href="class-OrDbFrmList.html">OrDbFrmList</a></li>
				<li><a href="class-OrDbPopupList.html">OrDbPopupList</a></li>
				<li><a href="class-OrDojoButton.html">OrDojoButton</a></li>
				<li><a href="class-OrDojoForm.html">OrDojoForm</a></li>
				<li><a href="class-OrDojoSelectbox.html">OrDojoSelectbox</a></li>
				<li><a href="class-OrDojoTextarea.html">OrDojoTextarea</a></li>
				<li><a href="class-OrDojoTextbox.html">OrDojoTextbox</a></li>
				<li><a href="class-OrDojoTextSearch.html">OrDojoTextSearch</a></li>
				<li><a href="class-OrFieldHidden.html">OrFieldHidden</a></li>
				<li><a href="class-OrFieldProperty.html">OrFieldProperty</a></li>
				<li><a href="class-OrForm.html">OrForm</a></li>
				<li><a href="class-OrFormat.html">OrFormat</a></li>
				<li><a href="class-OrGraph.html">OrGraph</a></li>
				<li><a href="class-OrGui.html">OrGui</a></li>
				<li><a href="class-OrHtml.html">OrHtml</a></li>
				<li><a href="class-OrImage.html">OrImage</a></li>
				<li><a href="class-OrJs.html">OrJs</a></li>
				<li><a href="class-OrJsCalendar.html">OrJsCalendar</a></li>
				<li><a href="class-OrJsMenu.html">OrJsMenu</a></li>
				<li><a href="class-OrLabel.html">OrLabel</a></li>
				<li><a href="class-OrLabelAjax.html">OrLabelAjax</a></li>
				<li><a href="class-OrMenu.html">OrMenu</a></li>
				<li><a href="class-OrMysql.html">OrMysql</a></li>
				<li><a href="class-OrMysqlThDate.html">OrMysqlThDate</a></li>
				<li><a href="class-OrMySqlThDatetime.html">OrMySqlThDatetime</a></li>
				<li><a href="class-OrObj.html">OrObj</a></li>
				<li><a href="class-OrPage.html">OrPage</a></li>
				<li><a href="class-OrPicture.html">OrPicture</a></li>
				<li><a href="class-OrProperty.html">OrProperty</a></li>
				<li class="active"><a href="class-OrSec.html">OrSec</a></li>
				<li><a href="class-OrSelectbox.html">OrSelectbox</a></li>
				<li><a href="class-OrSelectboxAjax.html">OrSelectboxAjax</a></li>
				<li><a href="class-OrSkin.html">OrSkin</a></li>
				<li><a href="class-OrSkinHtml.html">OrSkinHtml</a></li>
				<li><a href="class-OrSql.html">OrSql</a></li>
				<li><a href="class-OrSqlCrossTab.html">OrSqlCrossTab</a></li>
				<li><a href="class-OrSysvalue.html">OrSysvalue</a></li>
				<li><a href="class-OrTable.html">OrTable</a></li>
				<li><a href="class-OrTextarea.html">OrTextarea</a></li>
				<li><a href="class-OrTextbox.html">OrTextbox</a></li>
				<li><a href="class-OrTextCalendar.html">OrTextCalendar</a></li>
				<li><a href="class-OrTextCalendar2.html">OrTextCalendar2</a></li>
				<li><a href="class-OrThdate.html">OrThdate</a></li>
				<li><a href="class-select_ok_cancel.html">select_ok_cancel</a></li>
			</ul>





			<h3>Functions</h3>
			<ul>
				<li><a href="function-debug_mode.html">debug_mode</a></li>
				<li><a href="function-PMA_gpc_extract.html">PMA_gpc_extract</a></li>
			</ul>
		</div>
	</div>
</div>

<div id="splitter"></div>

<div id="right">
<div id="rightInner">
	<form id="search">
		<input type="hidden" name="cx" value="" />
		<input type="hidden" name="ie" value="UTF-8" />
		<input type="text" name="q" class="text" />
		<input type="submit" value="Search" />
	</form>

	<div id="navigation">
		<ul>
			<li>
				<a href="index.html" title="Overview"><span>Overview</span></a>
			</li>
			<li>
				<a href="package-None.html" title="Summary of None"><span>Package</span></a>
			</li>
			<li>
				<a href="class-OrSec.html" title="Summary of OrSec"><span>Class</span></a>
			</li>
		</ul>
		<ul>
			<li>
				<a href="tree.html" title="Tree view of classes, interfaces, traits and exceptions"><span>Tree</span></a>
			</li>
		</ul>
		<ul>
		</ul>
	</div>

<pre><code><span id="1" class="l"><a class="l" href="#1">  1: </a><span class="xlang">&lt;?php</span>
</span><span id="2" class="l"><a class="l" href="#2">  2: </a>
</span><span id="3" class="l"><a class="l" href="#3">  3: </a><span class="php-comment">// OrSec.php</span>
</span><span id="4" class="l"><a class="l" href="#4">  4: </a><span class="php-comment">//Created on 2-Apr-06</span>
</span><span id="5" class="l"><a class="l" href="#5">  5: </a><span class="php-comment">//@author Suchart Bunhachirat</span>
</span><span id="6" class="l"><a class="l" href="#6">  6: </a><span class="php-comment">//@version php4 - php5</span>
</span><span id="7" class="l"><a class="l" href="#7">  7: </a><span class="php-comment">//</span>
</span><span id="8" class="l"><a class="l" href="#8">  8: </a><span class="php-comment">//</span>
</span><span id="9" class="l"><a class="l" href="#9">  9: </a><span class="php-comment">//class OrSec</span>
</span><span id="10" class="l"><a class="l" href="#10"> 10: </a><span class="php-comment">//Class ควบคุมสิทธิ์การใช้งาน</span>
</span><span id="11" class="l"><a class="l" href="#11"> 11: </a>
</span><span id="12" class="l"><a class="l" href="#12"> 12: </a><span class="php-keyword1">class</span> <a id="OrSec" href="#OrSec">OrSec</a> <span class="php-keyword1">extends</span> OrObj {
</span><span id="13" class="l"><a class="l" href="#13"> 13: </a>
</span><span id="14" class="l"><a class="l" href="#14"> 14: </a>    <span class="php-keyword1">private</span> <span class="php-var"><a id="$info" href="#$info">$info</a></span> = <span class="php-keyword1">false</span>;
</span><span id="15" class="l"><a class="l" href="#15"> 15: </a>
</span><span id="16" class="l"><a class="l" href="#16"> 16: </a>    <span class="php-comment">//</span>
</span><span id="17" class="l"><a class="l" href="#17"> 17: </a>    <span class="php-comment">//กำหนดค่าเริ่มต้นของ Class</span>
</span><span id="18" class="l"><a class="l" href="#18"> 18: </a>    <span class="php-comment">//@param boolean check</span>
</span><span id="19" class="l"><a class="l" href="#19"> 19: </a>    <span class="php-comment">//@return</span>
</span><span id="20" class="l"><a class="l" href="#20"> 20: </a>    <span class="php-comment">//@access public</span>
</span><span id="21" class="l"><a class="l" href="#21"> 21: </a>
</span><span id="22" class="l"><a class="l" href="#22"> 22: </a>    <span class="php-keyword1">function</span> <a id="___construct" href="#___construct">__construct</a>(<span class="php-var">$check</span> = <span class="php-keyword1">true</span>) {
</span><span id="23" class="l"><a class="l" href="#23"> 23: </a>        <span class="php-keyword1">global</span> <span class="php-var">$my_sec_user</span>, <span class="php-var">$my_sec_key</span>;
</span><span id="24" class="l"><a class="l" href="#24"> 24: </a>        <span class="php-var">$this</span>-&gt;property(<span class="php-quote">'user'</span>, <span class="php-quote">'string'</span>);
</span><span id="25" class="l"><a class="l" href="#25"> 25: </a>        <span class="php-var">$this</span>-&gt;property(<span class="php-quote">'sys_id'</span>, <span class="php-quote">'string'</span>);
</span><span id="26" class="l"><a class="l" href="#26"> 26: </a>        <span class="php-var">$this</span>-&gt;property(<span class="php-quote">'sys_user'</span>, <span class="php-quote">'string'</span>);
</span><span id="27" class="l"><a class="l" href="#27"> 27: </a>        <span class="php-var">$this</span>-&gt;property(<span class="php-quote">'sec_user'</span>, <span class="php-quote">'string'</span>);
</span><span id="28" class="l"><a class="l" href="#28"> 28: </a>        <span class="php-var">$this</span>-&gt;property(<span class="php-quote">'group'</span>, <span class="php-quote">'string'</span>);
</span><span id="29" class="l"><a class="l" href="#29"> 29: </a>        <span class="php-var">$this</span>-&gt;property(<span class="php-quote">'script_name'</span>, <span class="php-quote">'string'</span>);
</span><span id="30" class="l"><a class="l" href="#30"> 30: </a>        <span class="php-var">$this</span>-&gt;property(<span class="php-quote">'ip_remote'</span>, <span class="php-quote">'string'</span>);
</span><span id="31" class="l"><a class="l" href="#31"> 31: </a>        <span class="php-var">$this</span>-&gt;property(<span class="php-quote">'sec_key'</span>, <span class="php-quote">'string'</span>);
</span><span id="32" class="l"><a class="l" href="#32"> 32: </a>        <span class="php-var">$this</span>-&gt;property(<span class="php-quote">'str_sql'</span>, <span class="php-quote">'string'</span>);
</span><span id="33" class="l"><a class="l" href="#33"> 33: </a>        <span class="php-var">$this</span>-&gt;property(<span class="php-quote">'title'</span>, <span class="php-quote">'string'</span>);
</span><span id="34" class="l"><a class="l" href="#34"> 34: </a>        <span class="php-var">$this</span>-&gt;property(<span class="php-quote">'description'</span>, <span class="php-quote">'string'</span>);
</span><span id="35" class="l"><a class="l" href="#35"> 35: </a>        <span class="php-var">$this</span>-&gt;property(<span class="php-quote">'aut_can_from'</span>, <span class="php-quote">'string'</span>); <span class="php-comment">//การสืบทอดคุณสมบัติสิทธิ์การใช้งาน</span>
</span><span id="36" class="l"><a class="l" href="#36"> 36: </a>
</span><span id="37" class="l"><a class="l" href="#37"> 37: </a>        <span class="php-comment">/* เริ่ม กำหนดเหตุการณ์ของ Calss */</span>
</span><span id="38" class="l"><a class="l" href="#38"> 38: </a>        <span class="php-var">$this</span>-&gt;event(<span class="php-quote">'login'</span>);
</span><span id="39" class="l"><a class="l" href="#39"> 39: </a>
</span><span id="40" class="l"><a class="l" href="#40"> 40: </a>        <span class="php-comment">/* ตรวจสอบการกำหนดค่าที่เกี่ยวข้อง */</span>
</span><span id="41" class="l"><a class="l" href="#41"> 41: </a>
</span><span id="42" class="l"><a class="l" href="#42"> 42: </a>        <span class="php-var">$this</span>-&gt;OP_[user]-&gt;set(<span class="php-var">$my_sec_user</span>);
</span><span id="43" class="l"><a class="l" href="#43"> 43: </a>        <span class="php-var">$this</span>-&gt;OP_[sec_key]-&gt;set(<span class="php-var">$my_sec_key</span>);
</span><span id="44" class="l"><a class="l" href="#44"> 44: </a>        <span class="php-var">$this</span>-&gt;set_info();
</span><span id="45" class="l"><a class="l" href="#45"> 45: </a>        <span class="php-keyword1">if</span> (<span class="php-var">$check</span>) {
</span><span id="46" class="l"><a class="l" href="#46"> 46: </a>            debug_mode(__FILE__, __LINE__, <span class="php-var">$check</span>, <span class="php-quote">'ตรวจสอบสิทธิ์'</span>);
</span><span id="47" class="l"><a class="l" href="#47"> 47: </a>            <span class="php-var">$this</span>-&gt;login_check(); <span class="php-comment">//การบันทึกเข้าใช้งาน</span>
</span><span id="48" class="l"><a class="l" href="#48"> 48: </a>            <span class="php-var">$this</span>-&gt;get_protect();
</span><span id="49" class="l"><a class="l" href="#49"> 49: </a>        } <span class="php-keyword1">else</span> {
</span><span id="50" class="l"><a class="l" href="#50"> 50: </a>            debug_mode(__FILE__, __LINE__, <span class="php-var">$check</span>, <span class="php-quote">'ไม่ตรวจสอบสิทธิ์'</span>);
</span><span id="51" class="l"><a class="l" href="#51"> 51: </a>        }
</span><span id="52" class="l"><a class="l" href="#52"> 52: </a>    }
</span><span id="53" class="l"><a class="l" href="#53"> 53: </a>
</span><span id="54" class="l"><a class="l" href="#54"> 54: </a>    <span class="php-comment">//</span>
</span><span id="55" class="l"><a class="l" href="#55"> 55: </a>    <span class="php-comment">//ข้อมูลที่เกี่ยวข้อง จากฐานข้อมูล</span>
</span><span id="56" class="l"><a class="l" href="#56"> 56: </a>    <span class="php-comment">//@param</span>
</span><span id="57" class="l"><a class="l" href="#57"> 57: </a>    <span class="php-comment">//@return null</span>
</span><span id="58" class="l"><a class="l" href="#58"> 58: </a>    <span class="php-comment">//@access public</span>
</span><span id="59" class="l"><a class="l" href="#59"> 59: </a>
</span><span id="60" class="l"><a class="l" href="#60"> 60: </a>    <span class="php-keyword1">function</span> <a id="_set_info" href="#_set_info">set_info</a>() {
</span><span id="61" class="l"><a class="l" href="#61"> 61: </a>        <span class="php-keyword1">global</span> <span class="php-var">$SCRIPT_FILENAME</span>, <span class="php-var">$REMOTE_ADDR</span>, <span class="php-var">$my_cfg_sec</span>;
</span><span id="62" class="l"><a class="l" href="#62"> 62: </a>
</span><span id="63" class="l"><a class="l" href="#63"> 63: </a>        <span class="php-var">$db_sec</span> = <span class="php-keyword1">new</span> OrMysql(<span class="php-var">$my_cfg_sec</span>[db]); <span class="php-comment">//(กำหนด Object ฐานข้อมูลที่จะใช้)</span>
</span><span id="64" class="l"><a class="l" href="#64"> 64: </a>        <span class="php-var">$sql</span> = <span class="php-quote">&quot;SELECT * FROM `my_sys`WHERE sys_id='&quot;</span> . <span class="php-keyword2">basename</span>(<span class="php-var">$SCRIPT_FILENAME</span>) . <span class="php-quote">&quot;';&quot;</span>;
</span><span id="65" class="l"><a class="l" href="#65"> 65: </a>        <span class="php-var">$db_sec</span>-&gt;get_query(<span class="php-var">$sql</span>);
</span><span id="66" class="l"><a class="l" href="#66"> 66: </a>        <span class="php-var">$db_sec</span>-&gt;get_record();
</span><span id="67" class="l"><a class="l" href="#67"> 67: </a>        <span class="php-keyword1">if</span> (<span class="php-var">$db_sec</span>-&gt;total_error &gt; <span class="php-num">0</span>
</span><span id="68" class="l"><a class="l" href="#68"> 68: </a>            )<span class="php-var">$db_sec</span>-&gt;show_error();
</span><span id="69" class="l"><a class="l" href="#69"> 69: </a>        <span class="php-keyword1">if</span> (<span class="php-var">$db_sec</span>-&gt;record[sys_id] == <span class="php-keyword2">basename</span>(<span class="php-var">$SCRIPT_FILENAME</span>)) {
</span><span id="70" class="l"><a class="l" href="#70"> 70: </a>            debug_mode(__FILE__, __LINE__, <span class="php-var">$this</span>-&gt;info, <span class="php-quote">'set_info'</span>);
</span><span id="71" class="l"><a class="l" href="#71"> 71: </a>            <span class="php-var">$this</span>-&gt;info = <span class="php-keyword1">true</span>;
</span><span id="72" class="l"><a class="l" href="#72"> 72: </a>        }
</span><span id="73" class="l"><a class="l" href="#73"> 73: </a>        <span class="php-var">$this</span>-&gt;OP_[script_name]-&gt;set(<span class="php-keyword2">basename</span>(<span class="php-var">$SCRIPT_FILENAME</span>));
</span><span id="74" class="l"><a class="l" href="#74"> 74: </a>        <span class="php-var">$this</span>-&gt;OP_[ip_remote]-&gt;set(<span class="php-var">$REMOTE_ADDR</span>);
</span><span id="75" class="l"><a class="l" href="#75"> 75: </a>        <span class="php-var">$this</span>-&gt;OP_[sys_id]-&gt;set(<span class="php-var">$db_sec</span>-&gt;record[sys_id]);
</span><span id="76" class="l"><a class="l" href="#76"> 76: </a>        <span class="php-var">$this</span>-&gt;OP_[aut_can_from]-&gt;set(<span class="php-var">$db_sec</span>-&gt;record[<span class="php-quote">'aut_can_from'</span>]); <span class="php-comment">//การสืบทอดสิทธิ์การใช้งาน</span>
</span><span id="77" class="l"><a class="l" href="#77"> 77: </a>        <span class="php-var">$this</span>-&gt;OP_[title]-&gt;set(<span class="php-var">$db_sec</span>-&gt;record[<span class="php-quote">'title'</span>]);
</span><span id="78" class="l"><a class="l" href="#78"> 78: </a>        <span class="php-var">$this</span>-&gt;OP_[description]-&gt;set(<span class="php-var">$db_sec</span>-&gt;record[<span class="php-quote">'description'</span>]);
</span><span id="79" class="l"><a class="l" href="#79"> 79: </a>
</span><span id="80" class="l"><a class="l" href="#80"> 80: </a>        <span class="php-keyword1">return</span> <span class="php-keyword1">null</span>;
</span><span id="81" class="l"><a class="l" href="#81"> 81: </a>    }
</span><span id="82" class="l"><a class="l" href="#82"> 82: </a>
</span><span id="83" class="l"><a class="l" href="#83"> 83: </a>    <span class="php-comment">//</span>
</span><span id="84" class="l"><a class="l" href="#84"> 84: </a>    <span class="php-comment">//ตรวจสอบการบันทึกเข้าใช้งาน</span>
</span><span id="85" class="l"><a class="l" href="#85"> 85: </a>    <span class="php-comment">//@param</span>
</span><span id="86" class="l"><a class="l" href="#86"> 86: </a>    <span class="php-comment">//@return null</span>
</span><span id="87" class="l"><a class="l" href="#87"> 87: </a>    <span class="php-comment">//@access public</span>
</span><span id="88" class="l"><a class="l" href="#88"> 88: </a>
</span><span id="89" class="l"><a class="l" href="#89"> 89: </a>    <span class="php-keyword1">function</span> <a id="_login_check" href="#_login_check">login_check</a>() {
</span><span id="90" class="l"><a class="l" href="#90"> 90: </a>        <span class="php-keyword1">global</span> <span class="php-var">$my_sec_user</span>, <span class="php-var">$my_sec_key</span>, <span class="php-var">$SCRIPT_FILENAME</span>, <span class="php-var">$REMOTE_ADDR</span>, <span class="php-var">$my_cfg_sec</span>, <span class="php-var">$my_cfg_opt</span>;
</span><span id="91" class="l"><a class="l" href="#91"> 91: </a>        <span class="php-comment">/** $my_sec_user : รหัสผู้ใช้ , $my_sec_key : คีย์ตรวจสอบการใช้งาน * */</span>
</span><span id="92" class="l"><a class="l" href="#92"> 92: </a>        <span class="php-keyword1">if</span> (<span class="php-keyword1">isset</span>(<span class="php-var">$my_sec_user</span>) <span class="php-keyword1">and</span> <span class="php-var">$my_sec_user</span> != <span class="php-quote">''</span>) {
</span><span id="93" class="l"><a class="l" href="#93"> 93: </a>            debug_mode(__FILE__, __LINE__, <span class="php-var">$my_sec_user</span>, <span class="php-quote">'ผู้ใช้ระบบ'</span>);
</span><span id="94" class="l"><a class="l" href="#94"> 94: </a>            debug_mode(__FILE__, __LINE__, <span class="php-var">$my_sec_key</span>, <span class="php-quote">'คีย์ระบบ'</span>);
</span><span id="95" class="l"><a class="l" href="#95"> 95: </a>            debug_mode(__FILE__, __LINE__, <span class="php-keyword2">md5</span>(<span class="php-var">$my_sec_user</span> . <span class="php-var">$my_cfg_sec</span>[ki]), <span class="php-quote">'คีย์ตรวจสอบ'</span>);
</span><span id="96" class="l"><a class="l" href="#96"> 96: </a>            <span class="php-comment">/** มีการกำหนด session และ มี user login แล้ว * */</span>
</span><span id="97" class="l"><a class="l" href="#97"> 97: </a>            <span class="php-keyword1">if</span> (<span class="php-keyword2">md5</span>(<span class="php-var">$my_sec_user</span> . <span class="php-var">$my_cfg_sec</span>[ki]) != <span class="php-var">$my_sec_key</span>) {
</span><span id="98" class="l"><a class="l" href="#98"> 98: </a>                <span class="php-var">$this</span>-&gt;activity(__LINE__ . <span class="php-quote">','</span> . <span class="php-var">$my_sec_user</span> . <span class="php-quote">'|'</span> . <span class="php-var">$SCRIPT_FILENAME</span> . <span class="php-var">$REMOTE_ADDR</span> . <span class="php-quote">',login_check'</span>);
</span><span id="99" class="l"><a class="l" href="#99"> 99: </a>                <span class="php-keyword1">die</span>(<span class="php-quote">'login_check ระบบความปลอดภัย ถูกบุกรุก ระบบหยุดทำงาน กรุณาแจ้งผู้ดูแลระบบ ด่วน!'</span>);
</span><span id="100" class="l"><a class="l" href="#100">100: </a>            }
</span><span id="101" class="l"><a class="l" href="#101">101: </a>        } <span class="php-keyword1">else</span> {
</span><span id="102" class="l"><a class="l" href="#102">102: </a>            <span class="php-comment">/** ตรวจการบันทึกเข้าใช้ระบบใหม่ * */</span>
</span><span id="103" class="l"><a class="l" href="#103">103: </a>            <span class="php-keyword1">if</span> (<span class="php-var">$my_cfg_opt</span>[login_page] != <span class="php-quote">''</span>) {
</span><span id="104" class="l"><a class="l" href="#104">104: </a>                <span class="php-keyword2">header</span>(<span class="php-quote">&quot;Location:&quot;</span> . <span class="php-var">$my_cfg_opt</span>[login_page]);
</span><span id="105" class="l"><a class="l" href="#105">105: </a>            }
</span><span id="106" class="l"><a class="l" href="#106">106: </a>            <span class="php-keyword1">die</span>(<span class="php-quote">'คุณยังไม่สามารถเข้าใช้โปรแกรม กรุณาบันทึกการเข้าใช้งานก่อน'</span>);
</span><span id="107" class="l"><a class="l" href="#107">107: </a>        }
</span><span id="108" class="l"><a class="l" href="#108">108: </a>        <span class="php-keyword1">return</span> <span class="php-keyword1">null</span>;
</span><span id="109" class="l"><a class="l" href="#109">109: </a>    }
</span><span id="110" class="l"><a class="l" href="#110">110: </a>
</span><span id="111" class="l"><a class="l" href="#111">111: </a>    <span class="php-comment">//</span>
</span><span id="112" class="l"><a class="l" href="#112">112: </a>    <span class="php-comment">//บันทึกเข้าใช้งาน</span>
</span><span id="113" class="l"><a class="l" href="#113">113: </a>    <span class="php-comment">//@param string user</span>
</span><span id="114" class="l"><a class="l" href="#114">114: </a>    <span class="php-comment">//@param string pass</span>
</span><span id="115" class="l"><a class="l" href="#115">115: </a>    <span class="php-comment">//@return null</span>
</span><span id="116" class="l"><a class="l" href="#116">116: </a>    <span class="php-comment">//@access public</span>
</span><span id="117" class="l"><a class="l" href="#117">117: </a>
</span><span id="118" class="l"><a class="l" href="#118">118: </a>    <span class="php-keyword1">function</span> <a id="_login" href="#_login">login</a>(<span class="php-var">$user</span>, <span class="php-var">$pass</span>) {
</span><span id="119" class="l"><a class="l" href="#119">119: </a>        <span class="php-keyword1">global</span> <span class="php-var">$REMOTE_ADDR</span>, <span class="php-var">$my_sec_user</span>, <span class="php-var">$my_sec_key</span>, <span class="php-var">$my_cfg_sec</span>, <span class="php-var">$my_cfg_opt</span>;
</span><span id="120" class="l"><a class="l" href="#120">120: </a>        <span class="php-var">$db_sec</span> = <span class="php-keyword1">new</span> OrMysql(<span class="php-var">$my_cfg_sec</span>[db]); <span class="php-comment">//(กำหนด Object ฐานข้อมูลที่จะใช้)</span>
</span><span id="121" class="l"><a class="l" href="#121">121: </a>        <span class="php-var">$sql</span> = <span class="php-quote">'SELECT * FROM `my_user` WHERE `user` = \''</span> . <span class="php-var">$user</span> . <span class="php-quote">'\' AND `status` = 0'</span>;
</span><span id="122" class="l"><a class="l" href="#122">122: </a>        <span class="php-var">$db_sec</span>-&gt;get_query(<span class="php-var">$sql</span>);
</span><span id="123" class="l"><a class="l" href="#123">123: </a>        <span class="php-var">$db_sec</span>-&gt;get_record();
</span><span id="124" class="l"><a class="l" href="#124">124: </a>        <span class="php-keyword1">if</span> (<span class="php-var">$db_sec</span>-&gt;total_error &gt; <span class="php-num">0</span>
</span><span id="125" class="l"><a class="l" href="#125">125: </a>            )<span class="php-var">$db_sec</span>-&gt;show_error();
</span><span id="126" class="l"><a class="l" href="#126">126: </a>        <span class="php-keyword1">if</span> (<span class="php-var">$db_sec</span>-&gt;record[val_pass] == <span class="php-keyword2">md5</span>(<span class="php-var">$pass</span>)) {
</span><span id="127" class="l"><a class="l" href="#127">127: </a>            <span class="php-var">$this</span>-&gt;OP_[user]-&gt;set(<span class="php-var">$user</span>);
</span><span id="128" class="l"><a class="l" href="#128">128: </a>            <span class="php-var">$this</span>-&gt;OP_[sec_key]-&gt;set(<span class="php-keyword2">md5</span>(<span class="php-var">$user</span> . <span class="php-var">$my_cfg_sec</span>[ki]));
</span><span id="129" class="l"><a class="l" href="#129">129: </a>            <span class="php-var">$my_sec_user</span> = <span class="php-var">$this</span>-&gt;OP_[user]-&gt;get();
</span><span id="130" class="l"><a class="l" href="#130">130: </a>            <span class="php-var">$my_sec_key</span> = <span class="php-var">$this</span>-&gt;OP_[sec_key]-&gt;get();
</span><span id="131" class="l"><a class="l" href="#131">131: </a>            <span class="php-var">$this</span>-&gt;activity(__LINE__ . <span class="php-quote">',login user '</span> . <span class="php-var">$this</span>-&gt;OP_[user]-&gt;get() . <span class="php-quote">',OK'</span>);
</span><span id="132" class="l"><a class="l" href="#132">132: </a>            <span class="php-var">$EV_</span>[EV_login] = <span class="php-keyword1">true</span>;
</span><span id="133" class="l"><a class="l" href="#133">133: </a>        } <span class="php-keyword1">else</span> {
</span><span id="134" class="l"><a class="l" href="#134">134: </a>            <span class="php-var">$this</span>-&gt;activity(__LINE__ . <span class="php-quote">',login user '</span> . <span class="php-var">$user</span> . <span class="php-quote">'|'</span> . <span class="php-var">$pass</span> . <span class="php-quote">',ERROR'</span>);
</span><span id="135" class="l"><a class="l" href="#135">135: </a>        }
</span><span id="136" class="l"><a class="l" href="#136">136: </a>        <span class="php-var">$db_sec</span>-&gt;close_conn();
</span><span id="137" class="l"><a class="l" href="#137">137: </a>        <span class="php-var">$EV_</span>[EV_user] = <span class="php-var">$user</span>;
</span><span id="138" class="l"><a class="l" href="#138">138: </a>        <span class="php-var">$this</span>-&gt;OE_login(<span class="php-var">$EV_</span>);
</span><span id="139" class="l"><a class="l" href="#139">139: </a>
</span><span id="140" class="l"><a class="l" href="#140">140: </a>        <span class="php-keyword1">if</span> (<span class="php-var">$my_cfg_opt</span>[after_login_page] != <span class="php-quote">''</span>) {
</span><span id="141" class="l"><a class="l" href="#141">141: </a>            <span class="php-keyword2">header</span>(<span class="php-quote">&quot;Location:&quot;</span> . <span class="php-var">$my_cfg_opt</span>[after_login_page]);
</span><span id="142" class="l"><a class="l" href="#142">142: </a>        }
</span><span id="143" class="l"><a class="l" href="#143">143: </a>
</span><span id="144" class="l"><a class="l" href="#144">144: </a>        <span class="php-keyword1">return</span> <span class="php-keyword1">null</span>;
</span><span id="145" class="l"><a class="l" href="#145">145: </a>    }
</span><span id="146" class="l"><a class="l" href="#146">146: </a>
</span><span id="147" class="l"><a class="l" href="#147">147: </a>    <span class="php-comment">//</span>
</span><span id="148" class="l"><a class="l" href="#148">148: </a>    <span class="php-comment">//ตรวจสอบการลงทะเบียนโปรแกรม</span>
</span><span id="149" class="l"><a class="l" href="#149">149: </a>    <span class="php-comment">//@param boolean check</span>
</span><span id="150" class="l"><a class="l" href="#150">150: </a>    <span class="php-comment">//@return null</span>
</span><span id="151" class="l"><a class="l" href="#151">151: </a>    <span class="php-comment">//@access public</span>
</span><span id="152" class="l"><a class="l" href="#152">152: </a>
</span><span id="153" class="l"><a class="l" href="#153">153: </a>    <span class="php-keyword1">function</span> <a id="_get_protect" href="#_get_protect">get_protect</a>() {
</span><span id="154" class="l"><a class="l" href="#154">154: </a>        <span class="php-keyword1">global</span> <span class="php-var">$SCRIPT_FILENAME</span>, <span class="php-var">$my_cfg_opt</span>;
</span><span id="155" class="l"><a class="l" href="#155">155: </a>        <span class="php-comment">/* ตรวจสอบว่ามีการลงทะเบียนระบบหรือไม่ */</span>
</span><span id="156" class="l"><a class="l" href="#156">156: </a>        debug_mode(__FILE__, __LINE__, <span class="php-var">$this</span>-&gt;info, <span class="php-quote">'get_protect'</span>);
</span><span id="157" class="l"><a class="l" href="#157">157: </a>        <span class="php-keyword1">if</span> (!<span class="php-var">$this</span>-&gt;info) {
</span><span id="158" class="l"><a class="l" href="#158">158: </a>            <span class="php-var">$this</span>-&gt;set_info();
</span><span id="159" class="l"><a class="l" href="#159">159: </a>        }
</span><span id="160" class="l"><a class="l" href="#160">160: </a>
</span><span id="161" class="l"><a class="l" href="#161">161: </a>        <span class="php-keyword1">if</span> (<span class="php-var">$this</span>-&gt;OP_[sys_id]-&gt;get() == <span class="php-keyword2">basename</span>(<span class="php-var">$SCRIPT_FILENAME</span>)) {
</span><span id="162" class="l"><a class="l" href="#162">162: </a>            <span class="php-var">$fun_val</span> = <span class="php-keyword1">true</span>;
</span><span id="163" class="l"><a class="l" href="#163">163: </a>        } <span class="php-keyword1">else</span> {
</span><span id="164" class="l"><a class="l" href="#164">164: </a>            <span class="php-keyword1">die</span>(<span class="php-quote">'โปรแกรม'</span> . <span class="php-var">$SCRIPT_FILENAME</span> . <span class="php-quote">'ไม่ปรากฎสัญชาติ กรุณาติดต่อ ผู้ดูแลระบบตรวจสอบด่วน!'</span>);
</span><span id="165" class="l"><a class="l" href="#165">165: </a>        }
</span><span id="166" class="l"><a class="l" href="#166">166: </a>
</span><span id="167" class="l"><a class="l" href="#167">167: </a>        <span class="php-keyword1">if</span> (!<span class="php-var">$this</span>-&gt;can_use()) {
</span><span id="168" class="l"><a class="l" href="#168">168: </a>            <span class="php-keyword1">if</span> (<span class="php-var">$my_cfg_opt</span>[error_page] != <span class="php-quote">''</span>) {
</span><span id="169" class="l"><a class="l" href="#169">169: </a>                <span class="php-keyword2">header</span>(<span class="php-quote">&quot;Location:&quot;</span> . <span class="php-var">$my_cfg_opt</span>[error_page] . <span class="php-quote">'?val_msg[description]='</span> . <span class="php-quote">'ไม่มีสิทธิ์การใช้งาน '</span> . <span class="php-var">$this</span>-&gt;OP_[sys_id]-&gt;get() . <span class="php-quote">'กรุณาตรวจสอบสิทธิการใช้โปรแกรมของคุณ!'</span>);
</span><span id="170" class="l"><a class="l" href="#170">170: </a>            }
</span><span id="171" class="l"><a class="l" href="#171">171: </a>            <span class="php-keyword1">die</span>(<span class="php-quote">'ไม่มีสิทธิ์การใช้งาน '</span> . <span class="php-var">$this</span>-&gt;OP_[sys_id]-&gt;get() . <span class="php-quote">' กรุณาตรวจสอบสิทธิการใช้โปรแกรมของคุณ!'</span>);
</span><span id="172" class="l"><a class="l" href="#172">172: </a>        }
</span><span id="173" class="l"><a class="l" href="#173">173: </a>
</span><span id="174" class="l"><a class="l" href="#174">174: </a>        <span class="php-keyword1">return</span> <span class="php-var">$fun_val</span>;
</span><span id="175" class="l"><a class="l" href="#175">175: </a>    }
</span><span id="176" class="l"><a class="l" href="#176">176: </a>
</span><span id="177" class="l"><a class="l" href="#177">177: </a>    <span class="php-comment">//</span>
</span><span id="178" class="l"><a class="l" href="#178">178: </a>    <span class="php-comment">//คำสั่งบันทึกออกจากการใช้งาน</span>
</span><span id="179" class="l"><a class="l" href="#179">179: </a>    <span class="php-comment">//@param string location</span>
</span><span id="180" class="l"><a class="l" href="#180">180: </a>    <span class="php-comment">//@return null</span>
</span><span id="181" class="l"><a class="l" href="#181">181: </a>    <span class="php-comment">//@access public</span>
</span><span id="182" class="l"><a class="l" href="#182">182: </a>
</span><span id="183" class="l"><a class="l" href="#183">183: </a>    <span class="php-keyword1">function</span> <a id="_logout" href="#_logout">logout</a>(<span class="php-var">$location</span> = <span class="php-quote">''</span>) {
</span><span id="184" class="l"><a class="l" href="#184">184: </a>        <span class="php-keyword1">global</span> <span class="php-var">$PHP_SELF</span>, <span class="php-var">$my_sec_user</span>, <span class="php-var">$my_sec_key</span>;
</span><span id="185" class="l"><a class="l" href="#185">185: </a>        <span class="php-var">$my_sec_user</span> = <span class="php-keyword1">null</span>;
</span><span id="186" class="l"><a class="l" href="#186">186: </a>        <span class="php-var">$my_sec_key</span> = <span class="php-keyword1">null</span>;
</span><span id="187" class="l"><a class="l" href="#187">187: </a>        <span class="php-keyword1">if</span> (<span class="php-var">$location</span> == <span class="php-quote">''</span>) {
</span><span id="188" class="l"><a class="l" href="#188">188: </a>            <span class="php-var">$location</span> = <span class="php-var">$PHP_SELF</span>;
</span><span id="189" class="l"><a class="l" href="#189">189: </a>        }
</span><span id="190" class="l"><a class="l" href="#190">190: </a>        <span class="php-keyword1">unset</span>(<span class="php-var">$my_sec_user</span>, <span class="php-var">$my_sec_key</span>);
</span><span id="191" class="l"><a class="l" href="#191">191: </a>        <span class="php-keyword2">header</span>(<span class="php-quote">&quot;Location:&quot;</span> . <span class="php-var">$location</span>);
</span><span id="192" class="l"><a class="l" href="#192">192: </a>        <span class="php-keyword1">return</span> <span class="php-keyword1">null</span>;
</span><span id="193" class="l"><a class="l" href="#193">193: </a>    }
</span><span id="194" class="l"><a class="l" href="#194">194: </a>
</span><span id="195" class="l"><a class="l" href="#195">195: </a>    <span class="php-comment">//</span>
</span><span id="196" class="l"><a class="l" href="#196">196: </a>    <span class="php-comment">//รายการกลุ่มของผู้ใช้งาน</span>
</span><span id="197" class="l"><a class="l" href="#197">197: </a>    <span class="php-comment">//@param string user</span>
</span><span id="198" class="l"><a class="l" href="#198">198: </a>    <span class="php-comment">//@return null</span>
</span><span id="199" class="l"><a class="l" href="#199">199: </a>    <span class="php-comment">//@access public</span>
</span><span id="200" class="l"><a class="l" href="#200">200: </a>
</span><span id="201" class="l"><a class="l" href="#201">201: </a>    <span class="php-keyword1">function</span> <a id="_get_group_list" href="#_get_group_list">get_group_list</a>(<span class="php-var">$user</span>) {
</span><span id="202" class="l"><a class="l" href="#202">202: </a>        <span class="php-keyword1">global</span> <span class="php-var">$my_cfg_sec</span>;
</span><span id="203" class="l"><a class="l" href="#203">203: </a>        <span class="php-comment">/* ตรวจสอบกลุ่มผู้ใช้งาน  สุชาติ บุญหชัยรัตน์ 23/2/2547 */</span>
</span><span id="204" class="l"><a class="l" href="#204">204: </a>        <span class="php-var">$db_sec</span> = <span class="php-keyword1">new</span> OrMysql(<span class="php-var">$my_cfg_sec</span>[db]); <span class="php-comment">//(กำหนด Object ฐานข้อมูลที่จะใช้)</span>
</span><span id="205" class="l"><a class="l" href="#205">205: </a>        <span class="php-var">$sql</span> = <span class="php-quote">&quot;SELECT * FROM `my_group`WHERE `user`='&quot;</span> . <span class="php-var">$user</span> . <span class="php-quote">&quot;';&quot;</span>;
</span><span id="206" class="l"><a class="l" href="#206">206: </a>        <span class="php-var">$db_sec</span>-&gt;get_query(<span class="php-var">$sql</span>);
</span><span id="207" class="l"><a class="l" href="#207">207: </a>        <span class="php-keyword1">if</span> (<span class="php-var">$db_sec</span>-&gt;total_error &gt; <span class="php-num">0</span>
</span><span id="208" class="l"><a class="l" href="#208">208: </a>            )<span class="php-var">$db_sec</span>-&gt;show_error();
</span><span id="209" class="l"><a class="l" href="#209">209: </a>        <span class="php-var">$my_list</span> = <span class="php-keyword1">array</span>();
</span><span id="210" class="l"><a class="l" href="#210">210: </a>        <span class="php-keyword1">while</span> (<span class="php-var">$db_sec</span>-&gt;get_record()) {
</span><span id="211" class="l"><a class="l" href="#211">211: </a>            <span class="php-var">$my_list</span>[] = <span class="php-var">$db_sec</span>-&gt;record[group];
</span><span id="212" class="l"><a class="l" href="#212">212: </a>            debug_mode(__FILE__, __LINE__, <span class="php-var">$db_sec</span>-&gt;record[group], <span class="php-quote">'กลุ่ม'</span>);
</span><span id="213" class="l"><a class="l" href="#213">213: </a>        }
</span><span id="214" class="l"><a class="l" href="#214">214: </a>        <span class="php-keyword1">return</span> <span class="php-var">$my_list</span>;
</span><span id="215" class="l"><a class="l" href="#215">215: </a>    }
</span><span id="216" class="l"><a class="l" href="#216">216: </a>
</span><span id="217" class="l"><a class="l" href="#217">217: </a>    <span class="php-comment">//</span>
</span><span id="218" class="l"><a class="l" href="#218">218: </a>    <span class="php-comment">//ตรวจสอบสิทธิ์การใช้ข้อมูลกลุ่ม ของเจ้าของข้อมูลกับ กับผู้ใช้งาน</span>
</span><span id="219" class="l"><a class="l" href="#219">219: </a>    <span class="php-comment">//คืนค่าเป็น true ถ้าเป็นกลุ่มเดียวกัน</span>
</span><span id="220" class="l"><a class="l" href="#220">220: </a>    <span class="php-comment">//@param string sec_user</span>
</span><span id="221" class="l"><a class="l" href="#221">221: </a>    <span class="php-comment">//@return boolean</span>
</span><span id="222" class="l"><a class="l" href="#222">222: </a>    <span class="php-comment">//@access public</span>
</span><span id="223" class="l"><a class="l" href="#223">223: </a>
</span><span id="224" class="l"><a class="l" href="#224">224: </a>    <span class="php-keyword1">function</span> <a id="_chk_aut_group" href="#_chk_aut_group">chk_aut_group</a>(<span class="php-var">$sec_user</span>) {
</span><span id="225" class="l"><a class="l" href="#225">225: </a>        <span class="php-keyword1">global</span> <span class="php-var">$my_cfg_sec</span>;
</span><span id="226" class="l"><a class="l" href="#226">226: </a>        <span class="php-var">$fun_val</span> = <span class="php-keyword1">false</span>;
</span><span id="227" class="l"><a class="l" href="#227">227: </a>        <span class="php-comment">/* ตรวจสอบกลุ่มต้องไม่เท่ากับค่าว่าง เพื่อป้องกันการตรวจสอบกลุ่มผิด สุชาติ บุญหชัยรัตน์ 20/9/2548 */</span>
</span><span id="228" class="l"><a class="l" href="#228">228: </a>        <span class="php-keyword1">if</span> (<span class="php-var">$sec_user</span> != <span class="php-quote">''</span>) {
</span><span id="229" class="l"><a class="l" href="#229">229: </a>            <span class="php-comment">/* ตรวจสอบกลุ่มผู้ใช้งาน ของเจ้าของข้อมูล กับผู้ใช้งาน เป็นกลุ่มเดียวหรือไม่ สุชาติ บุญหชัยรัตน์ 23/2/2547 */</span>
</span><span id="230" class="l"><a class="l" href="#230">230: </a>            <span class="php-var">$own_group</span> = <span class="php-var">$this</span>-&gt;get_group_list(<span class="php-var">$sec_user</span>);
</span><span id="231" class="l"><a class="l" href="#231">231: </a>            <span class="php-comment">/* ตรวจสอบว่าอยู่ใน กลุ่มของเจ้าของข้อมูลหรืเไม่? */</span>
</span><span id="232" class="l"><a class="l" href="#232">232: </a>            <span class="php-var">$db_sec</span> = <span class="php-keyword1">new</span> OrMysql(<span class="php-var">$my_cfg_sec</span>[db]); <span class="php-comment">//(กำหนด Object ฐานข้อมูลที่จะใช้)</span>
</span><span id="233" class="l"><a class="l" href="#233">233: </a>            <span class="php-var">$sql</span> = <span class="php-quote">&quot;SELECT * FROM `my_group`WHERE `user`='&quot;</span> . <span class="php-var">$this</span>-&gt;OP_[user]-&gt;get() . <span class="php-quote">&quot;' AND `group`='&quot;</span> . <span class="php-var">$sec_user</span> . <span class="php-quote">&quot;';&quot;</span>;
</span><span id="234" class="l"><a class="l" href="#234">234: </a>            <span class="php-comment">//echo &quot;&lt;b&gt;debug&lt;/b&gt; &quot;.__FILE__.&quot; | &quot;.__LINE__.&quot; | sql =&quot;.$sql.&quot;&lt;br&gt;&quot;;</span>
</span><span id="235" class="l"><a class="l" href="#235">235: </a>            <span class="php-var">$db_sec</span>-&gt;get_query(<span class="php-var">$sql</span>);
</span><span id="236" class="l"><a class="l" href="#236">236: </a>            <span class="php-var">$db_sec</span>-&gt;get_record();
</span><span id="237" class="l"><a class="l" href="#237">237: </a>
</span><span id="238" class="l"><a class="l" href="#238">238: </a>            <span class="php-keyword1">if</span> (<span class="php-var">$db_sec</span>-&gt;record[group] == <span class="php-var">$sec_user</span>) {
</span><span id="239" class="l"><a class="l" href="#239">239: </a>                <span class="php-var">$fun_val</span> = <span class="php-keyword1">true</span>;
</span><span id="240" class="l"><a class="l" href="#240">240: </a>            } <span class="php-keyword1">else</span> {
</span><span id="241" class="l"><a class="l" href="#241">241: </a>                <span class="php-keyword1">if</span> (<span class="php-keyword2">count</span>(<span class="php-var">$own_group</span>) &gt; <span class="php-num">0</span>) {
</span><span id="242" class="l"><a class="l" href="#242">242: </a>                    <span class="php-comment">/* ตรวจสอบว่าอยู่ใน กลุ่มอื่นๆ ของเจ้าของข้อมูลหรือไม่? */</span>
</span><span id="243" class="l"><a class="l" href="#243">243: </a>                    <span class="php-keyword1">foreach</span> (<span class="php-var">$own_group</span> <span class="php-keyword1">as</span> <span class="php-var">$key</span> =&gt; <span class="php-var">$val</span>) {
</span><span id="244" class="l"><a class="l" href="#244">244: </a>                        <span class="php-var">$sql</span> = <span class="php-quote">&quot;SELECT * FROM `my_group`WHERE `user`='&quot;</span> . <span class="php-var">$this</span>-&gt;OP_[user]-&gt;get() . <span class="php-quote">&quot;' AND `group`='&quot;</span> . <span class="php-var">$val</span> . <span class="php-quote">&quot;';&quot;</span>;
</span><span id="245" class="l"><a class="l" href="#245">245: </a>                        <span class="php-comment">//echo &quot;&lt;b&gt;debug&lt;/b&gt; &quot;.__FILE__.&quot; | &quot;.__LINE__.&quot; | sql =&quot;.$sql.&quot;&lt;br&gt;&quot;;</span>
</span><span id="246" class="l"><a class="l" href="#246">246: </a>                        <span class="php-var">$db_sec</span>-&gt;get_query(<span class="php-var">$sql</span>);
</span><span id="247" class="l"><a class="l" href="#247">247: </a>                        <span class="php-var">$db_sec</span>-&gt;get_record();
</span><span id="248" class="l"><a class="l" href="#248">248: </a>                        <span class="php-keyword1">if</span> (<span class="php-var">$db_sec</span>-&gt;record[group] == <span class="php-var">$val</span>) {
</span><span id="249" class="l"><a class="l" href="#249">249: </a>                            <span class="php-var">$fun_val</span> = <span class="php-keyword1">true</span>;
</span><span id="250" class="l"><a class="l" href="#250">250: </a>                            <span class="php-keyword1">break</span>;
</span><span id="251" class="l"><a class="l" href="#251">251: </a>                        }
</span><span id="252" class="l"><a class="l" href="#252">252: </a>                    }
</span><span id="253" class="l"><a class="l" href="#253">253: </a>                }
</span><span id="254" class="l"><a class="l" href="#254">254: </a>            }
</span><span id="255" class="l"><a class="l" href="#255">255: </a>        }
</span><span id="256" class="l"><a class="l" href="#256">256: </a>        <span class="php-keyword1">return</span> <span class="php-var">$fun_val</span>;
</span><span id="257" class="l"><a class="l" href="#257">257: </a>    }
</span><span id="258" class="l"><a class="l" href="#258">258: </a>
</span><span id="259" class="l"><a class="l" href="#259">259: </a>    <span class="php-comment">//</span>
</span><span id="260" class="l"><a class="l" href="#260">260: </a>    <span class="php-comment">//ตรวจสอบสิทธิ์การใช้ข้อมูล</span>
</span><span id="261" class="l"><a class="l" href="#261">261: </a>    <span class="php-comment">//0=ไม่มีสิทธิ์ใช้ข้อมูล;1=มีสิทธิ์อ่านข้อมูล;2=มีสิทธิ์อ่านเขียนข้อมูล;3=มีสิทธิ์อ่านเขียนลบข้อมูล</span>
</span><span id="262" class="l"><a class="l" href="#262">262: </a>    <span class="php-comment">//@param string sec_user</span>
</span><span id="263" class="l"><a class="l" href="#263">263: </a>    <span class="php-comment">//@return int</span>
</span><span id="264" class="l"><a class="l" href="#264">264: </a>    <span class="php-comment">//@access public</span>
</span><span id="265" class="l"><a class="l" href="#265">265: </a>
</span><span id="266" class="l"><a class="l" href="#266">266: </a>    <span class="php-keyword1">function</span> <a id="_get_authority" href="#_get_authority">get_authority</a>() {
</span><span id="267" class="l"><a class="l" href="#267">267: </a>        <span class="php-keyword1">global</span> <span class="php-var">$my_cfg_sec</span>;
</span><span id="268" class="l"><a class="l" href="#268">268: </a>        <span class="php-var">$this</span>-&gt;login_check();
</span><span id="269" class="l"><a class="l" href="#269">269: </a>        <span class="php-var">$fun_val</span> = <span class="php-num">0</span>;
</span><span id="270" class="l"><a class="l" href="#270">270: </a>        <span class="php-keyword1">if</span> (<span class="php-var">$this</span>-&gt;OP_[sys_id]-&gt;get() != <span class="php-quote">&quot;&quot;</span>)<span class="php-comment">/* ตรวจสอบรหัสโปรแกรม */</span> {
</span><span id="271" class="l"><a class="l" href="#271">271: </a>            <span class="php-var">$db_sec</span> = <span class="php-keyword1">new</span> OrMysql(<span class="php-var">$my_cfg_sec</span>[db]); <span class="php-comment">//(กำหนด Object ฐานข้อมูลที่จะใช้)</span>
</span><span id="272" class="l"><a class="l" href="#272">272: </a>            <span class="php-var">$sql</span> = <span class="php-quote">&quot;SELECT * FROM `my_sys`WHERE sys_id='&quot;</span> . <span class="php-var">$this</span>-&gt;OP_[sys_id]-&gt;get() . <span class="php-quote">&quot;';&quot;</span>;
</span><span id="273" class="l"><a class="l" href="#273">273: </a>            <span class="php-var">$db_sec</span>-&gt;get_query(<span class="php-var">$sql</span>);
</span><span id="274" class="l"><a class="l" href="#274">274: </a>            <span class="php-var">$db_sec</span>-&gt;get_record();
</span><span id="275" class="l"><a class="l" href="#275">275: </a>            <span class="php-keyword1">if</span> (<span class="php-var">$db_sec</span>-&gt;total_error &gt; <span class="php-num">0</span>
</span><span id="276" class="l"><a class="l" href="#276">276: </a>                )<span class="php-var">$db_sec</span>-&gt;show_error();
</span><span id="277" class="l"><a class="l" href="#277">277: </a>            <span class="php-keyword1">if</span> (<span class="php-var">$this</span>-&gt;OP_[user]-&gt;get() != <span class="php-quote">&quot;&quot;</span> <span class="php-keyword1">and</span> <span class="php-var">$db_sec</span>-&gt;record[sys_id] == <span class="php-var">$this</span>-&gt;OP_[sys_id]-&gt;get()) {
</span><span id="278" class="l"><a class="l" href="#278">278: </a>                <span class="php-comment">//if($db_sec-&gt;record[any_use] == 0 and $this-&gt;OP_[user]-&gt;get() != $db_sec-&gt;record[sec_user]){</span>
</span><span id="279" class="l"><a class="l" href="#279">279: </a>                <span class="php-comment">/* กำหนดตรวจสอบผู้ใช้โปรแกรม */</span>
</span><span id="280" class="l"><a class="l" href="#280">280: </a>                <span class="php-comment">//  if(!$this-&gt;can_use())die('ไม่มีสิทธิ์การใช้งาน '.$this-&gt;OP_[sys_id]-&gt;get().'กรุณาตรวจสอบสิทธิการใช้โปรแกรมของคุณ!');;</span>
</span><span id="281" class="l"><a class="l" href="#281">281: </a>                <span class="php-comment">//}</span>
</span><span id="282" class="l"><a class="l" href="#282">282: </a>                <span class="php-keyword1">if</span> (<span class="php-var">$this</span>-&gt;OP_[user]-&gt;get() == <span class="php-var">$db_sec</span>-&gt;record[sec_user] <span class="php-keyword1">and</span> <span class="php-var">$db_sec</span>-&gt;record[aut_god] == <span class="php-num">1</span>) {
</span><span id="283" class="l"><a class="l" href="#283">283: </a>                    <span class="php-comment">/* คืนค่าสิทธิ์เจ้าของข้อมูล */</span>
</span><span id="284" class="l"><a class="l" href="#284">284: </a>                    <span class="php-var">$fun_val</span> = <span class="php-num">3</span>;
</span><span id="285" class="l"><a class="l" href="#285">285: </a>                } <span class="php-keyword1">else</span> {
</span><span id="286" class="l"><a class="l" href="#286">286: </a>                    <span class="php-comment">/* ตรวจสอบสิทธิ์ในระดับผู้ใช้งานทั่วไป */</span>
</span><span id="287" class="l"><a class="l" href="#287">287: </a>                    <span class="php-keyword1">if</span> (<span class="php-var">$this</span>-&gt;OP_[user]-&gt;get() == <span class="php-var">$this</span>-&gt;OP_[sec_user]-&gt;get()
</span><span id="288" class="l"><a class="l" href="#288">288: </a>                        )<span class="php-var">$fun_val</span> = <span class="php-var">$db_sec</span>-&gt;record[aut_user];
</span><span id="289" class="l"><a class="l" href="#289">289: </a>                    <span class="php-comment">/* ตรวจสอบสิทธิ์ในระดับกลุ่ม */</span>
</span><span id="290" class="l"><a class="l" href="#290">290: </a>                    <span class="php-keyword1">if</span> (<span class="php-var">$this</span>-&gt;chk_aut_group(<span class="php-var">$this</span>-&gt;OP_[sec_user]-&gt;get())
</span><span id="291" class="l"><a class="l" href="#291">291: </a>                        )<span class="php-keyword1">if</span> (<span class="php-var">$db_sec</span>-&gt;record[aut_group] &gt; <span class="php-var">$fun_val</span>
</span><span id="292" class="l"><a class="l" href="#292">292: </a>                            )<span class="php-var">$fun_val</span> = <span class="php-var">$db_sec</span>-&gt;record[aut_group];
</span><span id="293" class="l"><a class="l" href="#293">293: </a>                    <span class="php-comment">/* ตรวจสอบสิทธิ์ในระดับผู้ใช้งานอื่นๆ */</span>
</span><span id="294" class="l"><a class="l" href="#294">294: </a>                    <span class="php-keyword1">if</span> (<span class="php-var">$db_sec</span>-&gt;record[aut_any] &gt; <span class="php-var">$fun_val</span>
</span><span id="295" class="l"><a class="l" href="#295">295: </a>                        )<span class="php-var">$fun_val</span> = <span class="php-var">$db_sec</span>-&gt;record[aut_any];
</span><span id="296" class="l"><a class="l" href="#296">296: </a>                }
</span><span id="297" class="l"><a class="l" href="#297">297: </a>            }
</span><span id="298" class="l"><a class="l" href="#298">298: </a>        }
</span><span id="299" class="l"><a class="l" href="#299">299: </a>        <span class="php-comment">//$db_sec-&gt;close_conn();</span>
</span><span id="300" class="l"><a class="l" href="#300">300: </a>        <span class="php-keyword1">unset</span>(<span class="php-var">$db_sec</span>);
</span><span id="301" class="l"><a class="l" href="#301">301: </a>        <span class="php-keyword1">return</span> <span class="php-var">$fun_val</span>;
</span><span id="302" class="l"><a class="l" href="#302">302: </a>    }
</span><span id="303" class="l"><a class="l" href="#303">303: </a>
</span><span id="304" class="l"><a class="l" href="#304">304: </a>    <span class="php-comment">//</span>
</span><span id="305" class="l"><a class="l" href="#305">305: </a>    <span class="php-comment">//ตรวจสอบสิทธิ์การเข้าใช้โปรแกรม</span>
</span><span id="306" class="l"><a class="l" href="#306">306: </a>    <span class="php-comment">//คืนค่าเป็น true ถ้าสามารถใช้งานได้</span>
</span><span id="307" class="l"><a class="l" href="#307">307: </a>    <span class="php-comment">//@return boolean</span>
</span><span id="308" class="l"><a class="l" href="#308">308: </a>    <span class="php-comment">//@access public</span>
</span><span id="309" class="l"><a class="l" href="#309">309: </a>
</span><span id="310" class="l"><a class="l" href="#310">310: </a>    <span class="php-keyword1">function</span> <a id="_can_use" href="#_can_use">can_use</a>() {
</span><span id="311" class="l"><a class="l" href="#311">311: </a>        <span class="php-keyword1">global</span> <span class="php-var">$my_cfg_sec</span>;
</span><span id="312" class="l"><a class="l" href="#312">312: </a>        <span class="php-comment">/* ตรวจสอบสิทธิการเข้าใช้งานโปรแกรม สุชาติ บุญหชัยรัตน์ 9/2/2547 */</span>
</span><span id="313" class="l"><a class="l" href="#313">313: </a>        <span class="php-var">$fun_val</span> = <span class="php-keyword1">false</span>;
</span><span id="314" class="l"><a class="l" href="#314">314: </a>        <span class="php-keyword1">if</span> (<span class="php-var">$this</span>-&gt;OP_[sys_id]-&gt;get() != <span class="php-quote">&quot;&quot;</span>) {
</span><span id="315" class="l"><a class="l" href="#315">315: </a>            <span class="php-keyword1">if</span> (<span class="php-var">$this</span>-&gt;OP_[aut_can_from]-&gt;get() != <span class="php-quote">''</span>) {
</span><span id="316" class="l"><a class="l" href="#316">316: </a>                <span class="php-comment">/* ตรวจสอบการสืบทอดสิทธิ์การใช้งาน */</span>
</span><span id="317" class="l"><a class="l" href="#317">317: </a>                <span class="php-var">$sys_id</span> = <span class="php-var">$this</span>-&gt;OP_[aut_can_from]-&gt;get();
</span><span id="318" class="l"><a class="l" href="#318">318: </a>            } <span class="php-keyword1">else</span> {
</span><span id="319" class="l"><a class="l" href="#319">319: </a>                <span class="php-var">$sys_id</span> = <span class="php-var">$this</span>-&gt;OP_[sys_id]-&gt;get();
</span><span id="320" class="l"><a class="l" href="#320">320: </a>            }
</span><span id="321" class="l"><a class="l" href="#321">321: </a>            <span class="php-var">$db_sec</span> = <span class="php-keyword1">new</span> OrMysql(<span class="php-var">$my_cfg_sec</span>[db]); <span class="php-comment">//(กำหนด Object ฐานข้อมูลที่จะใช้)</span>
</span><span id="322" class="l"><a class="l" href="#322">322: </a>            <span class="php-var">$sql</span> = <span class="php-quote">&quot;SELECT * FROM `my_can` WHERE `sys_id`='&quot;</span> . <span class="php-var">$sys_id</span> . <span class="php-quote">&quot;' AND `user`='&quot;</span> . <span class="php-var">$this</span>-&gt;OP_[user]-&gt;get() . <span class="php-quote">&quot;';&quot;</span>;
</span><span id="323" class="l"><a class="l" href="#323">323: </a>            <span class="php-var">$db_sec</span>-&gt;get_query(<span class="php-var">$sql</span>);
</span><span id="324" class="l"><a class="l" href="#324">324: </a>            <span class="php-var">$db_sec</span>-&gt;get_record();
</span><span id="325" class="l"><a class="l" href="#325">325: </a>            <span class="php-comment">//if($db_sec-&gt;total_error&gt;0)$db_sec-&gt;show_error();</span>
</span><span id="326" class="l"><a class="l" href="#326">326: </a>            <span class="php-keyword1">if</span> (<span class="php-var">$db_sec</span>-&gt;record[user] == <span class="php-var">$this</span>-&gt;OP_[user]-&gt;get()) {
</span><span id="327" class="l"><a class="l" href="#327">327: </a>                <span class="php-comment">/* สิทธิ์ผู้ใช้งานที่สามารถใช้ได้ ตามปกติ */</span>
</span><span id="328" class="l"><a class="l" href="#328">328: </a>                <span class="php-var">$this</span>-&gt;OP_[str_sql]-&gt;set(<span class="php-keyword2">ltrim</span>(<span class="php-var">$db_sec</span>-&gt;record[<span class="php-quote">'str_sql'</span>]));
</span><span id="329" class="l"><a class="l" href="#329">329: </a>                <span class="php-var">$fun_val</span> = <span class="php-keyword1">true</span>;
</span><span id="330" class="l"><a class="l" href="#330">330: </a>            } <span class="php-keyword1">else</span> {
</span><span id="331" class="l"><a class="l" href="#331">331: </a>
</span><span id="332" class="l"><a class="l" href="#332">332: </a>                <span class="php-var">$sql</span> = <span class="php-quote">&quot;SELECT * FROM `my_sys`WHERE sys_id='&quot;</span> . <span class="php-var">$sys_id</span> . <span class="php-quote">&quot;';&quot;</span>;
</span><span id="333" class="l"><a class="l" href="#333">333: </a>                <span class="php-var">$db_sec</span>-&gt;get_query(<span class="php-var">$sql</span>);
</span><span id="334" class="l"><a class="l" href="#334">334: </a>                <span class="php-var">$db_sec</span>-&gt;get_record();
</span><span id="335" class="l"><a class="l" href="#335">335: </a>                <span class="php-keyword1">if</span> (<span class="php-var">$db_sec</span>-&gt;record[any_use] == <span class="php-num">1</span>) {
</span><span id="336" class="l"><a class="l" href="#336">336: </a>                    <span class="php-var">$fun_val</span> = <span class="php-keyword1">true</span>;
</span><span id="337" class="l"><a class="l" href="#337">337: </a>                } <span class="php-keyword1">else</span> <span class="php-keyword1">if</span> (<span class="php-var">$this</span>-&gt;OP_[user]-&gt;get() == <span class="php-var">$db_sec</span>-&gt;record[sec_user]) {
</span><span id="338" class="l"><a class="l" href="#338">338: </a>                    <span class="php-var">$fun_val</span> = <span class="php-keyword1">true</span>;
</span><span id="339" class="l"><a class="l" href="#339">339: </a>                } <span class="php-keyword1">else</span> <span class="php-keyword1">if</span> (<span class="php-var">$this</span>-&gt;chk_aut_group(<span class="php-var">$can_user</span> = <span class="php-var">$this</span>-&gt;can_use_group(<span class="php-var">$sys_id</span>))) {
</span><span id="340" class="l"><a class="l" href="#340">340: </a>                    <span class="php-comment">/* ตรวจสิทธิ์ระดับกลุ่มผู้ใช้งาน */</span>
</span><span id="341" class="l"><a class="l" href="#341">341: </a>                    <span class="php-var">$sql</span> = <span class="php-quote">&quot;SELECT * FROM `my_can` WHERE `sys_id`='&quot;</span> . <span class="php-var">$sys_id</span> . <span class="php-quote">&quot;' AND `user`='&quot;</span> . <span class="php-var">$can_user</span> . <span class="php-quote">&quot;';&quot;</span>;
</span><span id="342" class="l"><a class="l" href="#342">342: </a>                    <span class="php-var">$db_sec</span>-&gt;get_query(<span class="php-var">$sql</span>);
</span><span id="343" class="l"><a class="l" href="#343">343: </a>                    <span class="php-var">$db_sec</span>-&gt;get_record();
</span><span id="344" class="l"><a class="l" href="#344">344: </a>                    <span class="php-comment">//echo &quot;&lt;b&gt;debug&lt;/b&gt; &quot;.__FILE__.&quot; | &quot;.__LINE__.&quot; | str_sql =&quot; . $db_sec-&gt;record['str_sql'] . &quot;&lt;br&gt;&quot;;</span>
</span><span id="345" class="l"><a class="l" href="#345">345: </a>                    <span class="php-var">$this</span>-&gt;OP_[str_sql]-&gt;set(<span class="php-var">$db_sec</span>-&gt;record[<span class="php-quote">'str_sql'</span>]);
</span><span id="346" class="l"><a class="l" href="#346">346: </a>                    <span class="php-var">$fun_val</span> = <span class="php-keyword1">true</span>;
</span><span id="347" class="l"><a class="l" href="#347">347: </a>                }
</span><span id="348" class="l"><a class="l" href="#348">348: </a>            }
</span><span id="349" class="l"><a class="l" href="#349">349: </a>        }
</span><span id="350" class="l"><a class="l" href="#350">350: </a>        <span class="php-keyword1">return</span> <span class="php-var">$fun_val</span>;
</span><span id="351" class="l"><a class="l" href="#351">351: </a>    }
</span><span id="352" class="l"><a class="l" href="#352">352: </a>
</span><span id="353" class="l"><a class="l" href="#353">353: </a>    <span class="php-keyword1">function</span> <a id="_can_use_group" href="#_can_use_group">can_use_group</a>(<span class="php-var">$sys_id</span> = <span class="php-quote">''</span>) {
</span><span id="354" class="l"><a class="l" href="#354">354: </a>        <span class="php-keyword1">global</span> <span class="php-var">$my_cfg_sec</span>;
</span><span id="355" class="l"><a class="l" href="#355">355: </a>        <span class="php-comment">/* หาสิทธิ์ของโปรแกรม กลุ่มตามผู้ใช้งานปัจจุบัน */</span>
</span><span id="356" class="l"><a class="l" href="#356">356: </a>
</span><span id="357" class="l"><a class="l" href="#357">357: </a>        <span class="php-var">$my_vaule</span> = <span class="php-quote">''</span>;
</span><span id="358" class="l"><a class="l" href="#358">358: </a>        <span class="php-var">$sql</span> = <span class="php-quote">&quot;SELECT `my_can`.`sys_id` AS `sys_id` , `my_group`.`group` AS `group` , `my_can`.`aut_to_group` AS `aut_to_group` , `my_group`.`user` AS `user` &quot;</span>;
</span><span id="359" class="l"><a class="l" href="#359">359: </a>        <span class="php-var">$sql</span> .= <span class="php-quote">&quot;FROM `my_can`, `my_group` &quot;</span>;
</span><span id="360" class="l"><a class="l" href="#360">360: </a>        <span class="php-var">$sql</span> .= <span class="php-quote">&quot;WHERE ( `my_can`.`user` = `my_group`.`group` ) AND ( ( `my_can`.`sys_id` = '&quot;</span> . <span class="php-var">$sys_id</span> . <span class="php-quote">&quot;' AND `my_can`.`aut_to_group` = 1 AND `my_group`.`user` = '&quot;</span> . <span class="php-var">$this</span>-&gt;OP_[user]-&gt;get() . <span class="php-quote">&quot;' ) )&quot;</span>;
</span><span id="361" class="l"><a class="l" href="#361">361: </a>
</span><span id="362" class="l"><a class="l" href="#362">362: </a>        <span class="php-var">$db_sec</span> = <span class="php-keyword1">new</span> OrMysql(<span class="php-var">$my_cfg_sec</span>[db]); <span class="php-comment">//(กำหนด Object ฐานข้อมูลที่จะใช้)</span>
</span><span id="363" class="l"><a class="l" href="#363">363: </a>        <span class="php-var">$db_sec</span>-&gt;get_query(<span class="php-var">$sql</span>);
</span><span id="364" class="l"><a class="l" href="#364">364: </a>        <span class="php-keyword1">if</span> (<span class="php-var">$db_sec</span>-&gt;get_record()) {
</span><span id="365" class="l"><a class="l" href="#365">365: </a>            <span class="php-var">$my_value</span> = <span class="php-var">$db_sec</span>-&gt;record[<span class="php-quote">'group'</span>];
</span><span id="366" class="l"><a class="l" href="#366">366: </a>        }
</span><span id="367" class="l"><a class="l" href="#367">367: </a>        <span class="php-comment">//echo &quot;&lt;b&gt;debug&lt;/b&gt; &quot;.__FILE__.&quot; | &quot;.__LINE__.&quot; | my_value=&quot; . $my_value . &quot;&lt;br&gt;&quot;;</span>
</span><span id="368" class="l"><a class="l" href="#368">368: </a>        <span class="php-keyword1">return</span> <span class="php-var">$my_value</span>;
</span><span id="369" class="l"><a class="l" href="#369">369: </a>    }
</span><span id="370" class="l"><a class="l" href="#370">370: </a>
</span><span id="371" class="l"><a class="l" href="#371">371: </a>    <span class="php-keyword1">function</span> <a id="_can_read" href="#_can_read">can_read</a>() {
</span><span id="372" class="l"><a class="l" href="#372">372: </a>        <span class="php-comment">/* ตรวจสอบสิทธิ์การอ่านข้อมูล
</span></span><span id="373" class="l"><a class="l" href="#373">373: </a><span class="php-comment">          $sys_id=รหัสโปรแกรมที่ตรวจสอบ
</span></span><span id="374" class="l"><a class="l" href="#374">374: </a><span class="php-comment">          $sec_user=รหัสผู้ใช้งานที่เป็นเจ้าของข้อมูล */</span>
</span><span id="375" class="l"><a class="l" href="#375">375: </a>        <span class="php-keyword1">if</span> (<span class="php-var">$this</span>-&gt;get_protect()) {
</span><span id="376" class="l"><a class="l" href="#376">376: </a>            <span class="php-keyword1">if</span> (<span class="php-var">$this</span>-&gt;get_authority(<span class="php-var">$this</span>-&gt;OP_[sys_id]-&gt;get(), <span class="php-var">$this</span>-&gt;OP_[sec_user]-&gt;get()) &gt; <span class="php-num">0</span>) {
</span><span id="377" class="l"><a class="l" href="#377">377: </a>                <span class="php-comment">/* ต้องกำหนดระดับสิทธิ์&gt;0 */</span>
</span><span id="378" class="l"><a class="l" href="#378">378: </a>                <span class="php-var">$fun_val</span> = <span class="php-keyword1">true</span>;
</span><span id="379" class="l"><a class="l" href="#379">379: </a>            }
</span><span id="380" class="l"><a class="l" href="#380">380: </a>        } <span class="php-keyword1">else</span> {
</span><span id="381" class="l"><a class="l" href="#381">381: </a>            <span class="php-comment">/* ไม่มีการกำหนดการควบคุมข้อมูล */</span>
</span><span id="382" class="l"><a class="l" href="#382">382: </a>            <span class="php-var">$fun_val</span> = <span class="php-keyword1">true</span>;
</span><span id="383" class="l"><a class="l" href="#383">383: </a>        }
</span><span id="384" class="l"><a class="l" href="#384">384: </a>        <span class="php-keyword1">return</span> <span class="php-var">$fun_val</span>;
</span><span id="385" class="l"><a class="l" href="#385">385: </a>    }
</span><span id="386" class="l"><a class="l" href="#386">386: </a>
</span><span id="387" class="l"><a class="l" href="#387">387: </a>    <span class="php-keyword1">function</span> <a id="_can_save" href="#_can_save">can_save</a>() {
</span><span id="388" class="l"><a class="l" href="#388">388: </a>        <span class="php-comment">/* ตรวจสอบสิทธิ์การบันทึกข้อมูล
</span></span><span id="389" class="l"><a class="l" href="#389">389: </a><span class="php-comment">          $sys_id=รหัสโปรแกรมที่ตรวจสอบ
</span></span><span id="390" class="l"><a class="l" href="#390">390: </a><span class="php-comment">          $sec_user=รหัสผู้ใช้งานที่เป็นเจ้าของข้อมูล */</span>
</span><span id="391" class="l"><a class="l" href="#391">391: </a>        <span class="php-var">$fun_val</span> = <span class="php-keyword1">false</span>;
</span><span id="392" class="l"><a class="l" href="#392">392: </a>        <span class="php-keyword1">if</span> (<span class="php-var">$this</span>-&gt;get_protect()) {
</span><span id="393" class="l"><a class="l" href="#393">393: </a>            <span class="php-keyword1">if</span> (<span class="php-var">$this</span>-&gt;get_authority(<span class="php-var">$this</span>-&gt;OP_[sys_id]-&gt;get(), <span class="php-var">$this</span>-&gt;OP_[sec_user]-&gt;get()) &gt; <span class="php-num">1</span>) {
</span><span id="394" class="l"><a class="l" href="#394">394: </a>                <span class="php-comment">/* ต้องกำหนดระดับสิทธิ์&gt;1 */</span>
</span><span id="395" class="l"><a class="l" href="#395">395: </a>                <span class="php-var">$fun_val</span> = <span class="php-keyword1">true</span>;
</span><span id="396" class="l"><a class="l" href="#396">396: </a>            }
</span><span id="397" class="l"><a class="l" href="#397">397: </a>        } <span class="php-keyword1">else</span> {
</span><span id="398" class="l"><a class="l" href="#398">398: </a>            <span class="php-comment">/* ไม่มีการกำหนดการควบคุมข้อมูล */</span>
</span><span id="399" class="l"><a class="l" href="#399">399: </a>            <span class="php-var">$fun_val</span> = <span class="php-keyword1">true</span>;
</span><span id="400" class="l"><a class="l" href="#400">400: </a>        }
</span><span id="401" class="l"><a class="l" href="#401">401: </a>        <span class="php-keyword1">return</span> <span class="php-var">$fun_val</span>;
</span><span id="402" class="l"><a class="l" href="#402">402: </a>    }
</span><span id="403" class="l"><a class="l" href="#403">403: </a>
</span><span id="404" class="l"><a class="l" href="#404">404: </a>    <span class="php-keyword1">function</span> <a id="_can_del" href="#_can_del">can_del</a>() {
</span><span id="405" class="l"><a class="l" href="#405">405: </a>        <span class="php-comment">/* ตรวจสอบสิทธิ์การลบข้อมูล
</span></span><span id="406" class="l"><a class="l" href="#406">406: </a><span class="php-comment">          $sys_id=รหัสโปรแกรมที่ตรวจสอบ
</span></span><span id="407" class="l"><a class="l" href="#407">407: </a><span class="php-comment">          $sec_user=รหัสผู้ใช้งานที่เป็นเจ้าของข้อมูล */</span>
</span><span id="408" class="l"><a class="l" href="#408">408: </a>        <span class="php-var">$fun_val</span> = <span class="php-keyword1">false</span>;
</span><span id="409" class="l"><a class="l" href="#409">409: </a>        <span class="php-keyword1">if</span> (<span class="php-var">$this</span>-&gt;get_protect()) {
</span><span id="410" class="l"><a class="l" href="#410">410: </a>            <span class="php-keyword1">if</span> (<span class="php-var">$this</span>-&gt;get_authority(<span class="php-var">$this</span>-&gt;OP_[sys_id]-&gt;get(), <span class="php-var">$this</span>-&gt;OP_[sec_user]-&gt;get()) &gt; <span class="php-num">2</span>) {
</span><span id="411" class="l"><a class="l" href="#411">411: </a>                <span class="php-comment">/* ต้องกำหนดระดับสิทธิ์&gt;2 */</span>
</span><span id="412" class="l"><a class="l" href="#412">412: </a>                <span class="php-var">$fun_val</span> = <span class="php-keyword1">true</span>;
</span><span id="413" class="l"><a class="l" href="#413">413: </a>            }
</span><span id="414" class="l"><a class="l" href="#414">414: </a>        } <span class="php-keyword1">else</span> {
</span><span id="415" class="l"><a class="l" href="#415">415: </a>            <span class="php-comment">/* ไม่มีการกำหนดการควบคุมข้อมูล */</span>
</span><span id="416" class="l"><a class="l" href="#416">416: </a>            <span class="php-var">$fun_val</span> = <span class="php-keyword1">true</span>;
</span><span id="417" class="l"><a class="l" href="#417">417: </a>        }
</span><span id="418" class="l"><a class="l" href="#418">418: </a>        <span class="php-keyword1">return</span> <span class="php-var">$fun_val</span>;
</span><span id="419" class="l"><a class="l" href="#419">419: </a>    }
</span><span id="420" class="l"><a class="l" href="#420">420: </a>
</span><span id="421" class="l"><a class="l" href="#421">421: </a>    <span class="php-keyword1">function</span> <a id="_get_status" href="#_get_status">get_status</a>() {
</span><span id="422" class="l"><a class="l" href="#422">422: </a>        <span class="php-var">$tag_chg_owner</span> = <span class="php-quote">'&lt;button name=&quot;evt_form_db[chg_owner]&quot; type=&quot;submit&quot; value=&quot;-&gt;&quot; title=&quot;แก้ไขเจ้าของข้อมูล&quot;&gt;'</span> . <span class="php-var">$this</span>-&gt;OP_[sec_user]-&gt;get() . <span class="php-quote">'&lt;/button&gt;'</span>;
</span><span id="423" class="l"><a class="l" href="#423">423: </a>        <span class="php-keyword1">return</span> <span class="php-quote">'ผู้ใช้ระบบ : '</span> . <span class="php-var">$this</span>-&gt;OP_[user]-&gt;get() . <span class="php-quote">' | เจ้าของ : '</span> . <span class="php-var">$tag_chg_owner</span> . <span class="php-quote">' | ระบบ : '</span> . <span class="php-var">$this</span>-&gt;OP_[sys_id]-&gt;get() . <span class="php-quote">' | ระดับสิทธิ์ : '</span> . <span class="php-var">$this</span>-&gt;get_authority();
</span><span id="424" class="l"><a class="l" href="#424">424: </a>    }
</span><span id="425" class="l"><a class="l" href="#425">425: </a>
</span><span id="426" class="l"><a class="l" href="#426">426: </a>    <span class="php-keyword1">function</span> <a id="_activity" href="#_activity">activity</a>(<span class="php-var">$description</span>) {
</span><span id="427" class="l"><a class="l" href="#427">427: </a>        <span class="php-keyword1">global</span> <span class="php-var">$my_cfg_sec</span>, <span class="php-var">$REMOTE_ADDR</span>, <span class="php-var">$SCRIPT_FILENAME</span>;
</span><span id="428" class="l"><a class="l" href="#428">428: </a>        <span class="php-var">$this</span>-&gt;OP_[script_name]-&gt;set(<span class="php-keyword2">basename</span>(<span class="php-var">$SCRIPT_FILENAME</span>));
</span><span id="429" class="l"><a class="l" href="#429">429: </a>        <span class="php-var">$this</span>-&gt;OP_[ip_remote]-&gt;set(<span class="php-var">$REMOTE_ADDR</span>);
</span><span id="430" class="l"><a class="l" href="#430">430: </a>        <span class="php-var">$this</span>-&gt;OP_[sys_id]-&gt;set(<span class="php-keyword2">basename</span>(<span class="php-var">$SCRIPT_FILENAME</span>));
</span><span id="431" class="l"><a class="l" href="#431">431: </a>        <span class="php-var">$db_sec</span> = <span class="php-keyword1">new</span> OrMysql(<span class="php-var">$my_cfg_sec</span>[db]); <span class="php-comment">//(กำหนด Object ฐานข้อมูลที่จะใช้)</span>
</span><span id="432" class="l"><a class="l" href="#432">432: </a>        <span class="php-var">$sql</span> = <span class="php-quote">&quot;INSERT INTO `my_activity` (`id`, `description`, `sec_user`, `sec_time`, `sec_ip`, `sec_script`) VALUES ('', '&quot;</span> .
</span><span id="433" class="l"><a class="l" href="#433">433: </a>                <span class="php-keyword2">AddSlashes</span>(<span class="php-var">$description</span>) . <span class="php-quote">&quot;', '&quot;</span> . <span class="php-var">$this</span>-&gt;OP_[user]-&gt;get() . <span class="php-quote">&quot;', NOW(), '&quot;</span> . <span class="php-var">$this</span>-&gt;OP_[ip_remote]-&gt;get() . <span class="php-quote">&quot;', '&quot;</span> . <span class="php-var">$this</span>-&gt;OP_[script_name]-&gt;get() . <span class="php-quote">&quot;');&quot;</span>;
</span><span id="434" class="l"><a class="l" href="#434">434: </a>        <span class="php-var">$db_sec</span>-&gt;get_query(<span class="php-var">$sql</span>);
</span><span id="435" class="l"><a class="l" href="#435">435: </a>        <span class="php-keyword1">if</span> (<span class="php-var">$db_sec</span>-&gt;is_error()
</span><span id="436" class="l"><a class="l" href="#436">436: </a>            )<span class="php-var">$db_sec</span>-&gt;show_error();
</span><span id="437" class="l"><a class="l" href="#437">437: </a>        <span class="php-keyword1">return</span> <span class="php-keyword1">null</span>;
</span><span id="438" class="l"><a class="l" href="#438">438: </a>    }
</span><span id="439" class="l"><a class="l" href="#439">439: </a>
</span><span id="440" class="l"><a class="l" href="#440">440: </a>    <span class="php-keyword1">function</span> <a id="_get_user_list" href="#_get_user_list">get_user_list</a>() {
</span><span id="441" class="l"><a class="l" href="#441">441: </a>        <span class="php-keyword1">global</span> <span class="php-var">$my_cfg_sec</span>;
</span><span id="442" class="l"><a class="l" href="#442">442: </a>        <span class="php-var">$db_sec</span> = <span class="php-keyword1">new</span> OrMysql(<span class="php-var">$my_cfg_sec</span>[db]); <span class="php-comment">//(กำหนด Object ฐานข้อมูลที่จะใช้)</span>
</span><span id="443" class="l"><a class="l" href="#443">443: </a>        <span class="php-var">$sql</span> = <span class="php-quote">&quot;SELECT `id` , `user` FROM  `my_user` ORDER BY `user` ASC ;&quot;</span>;
</span><span id="444" class="l"><a class="l" href="#444">444: </a>        <span class="php-var">$db_sec</span>-&gt;get_query(<span class="php-var">$sql</span>);
</span><span id="445" class="l"><a class="l" href="#445">445: </a>        <span class="php-keyword1">if</span> (<span class="php-var">$db_sec</span>-&gt;total_error &gt; <span class="php-num">0</span>
</span><span id="446" class="l"><a class="l" href="#446">446: </a>            )<span class="php-var">$db_sec</span>-&gt;show_error();
</span><span id="447" class="l"><a class="l" href="#447">447: </a>        <span class="php-var">$owner_list</span> = <span class="php-keyword1">array</span>();
</span><span id="448" class="l"><a class="l" href="#448">448: </a>        <span class="php-keyword1">while</span> (<span class="php-var">$db_sec</span>-&gt;get_record()) {
</span><span id="449" class="l"><a class="l" href="#449">449: </a>            <span class="php-var">$owner_list</span>[<span class="php-var">$db_sec</span>-&gt;record[user]] = <span class="php-var">$db_sec</span>-&gt;record[user];
</span><span id="450" class="l"><a class="l" href="#450">450: </a>        }
</span><span id="451" class="l"><a class="l" href="#451">451: </a>        <span class="php-keyword1">return</span> <span class="php-var">$owner_list</span>;
</span><span id="452" class="l"><a class="l" href="#452">452: </a>    }
</span><span id="453" class="l"><a class="l" href="#453">453: </a>
</span><span id="454" class="l"><a class="l" href="#454">454: </a>    <span class="php-keyword1">function</span> <a id="_get_user_text" href="#_get_user_text">get_user_text</a>() {
</span><span id="455" class="l"><a class="l" href="#455">455: </a>        <span class="php-comment">/* คืนรายละเอียดผู้ใช้ทั่วไปตาม user สุชาติ บุญหชัยรตน์ 21/12/2546 */</span>
</span><span id="456" class="l"><a class="l" href="#456">456: </a>        <span class="php-keyword1">global</span> <span class="php-var">$my_cfg_sec</span>;
</span><span id="457" class="l"><a class="l" href="#457">457: </a>        <span class="php-var">$db_sec</span> = <span class="php-keyword1">new</span> OrMysql(<span class="php-var">$my_cfg_sec</span>[db]); <span class="php-comment">//(กำหนด Object ฐานข้อมูลที่จะใช้)</span>
</span><span id="458" class="l"><a class="l" href="#458">458: </a>        <span class="php-var">$sql</span> = <span class="php-quote">&quot;SELECT `prefix` , `fname`, `lname` FROM  `my_user` WHERE `user` = '&quot;</span> . <span class="php-var">$this</span>-&gt;OP_[user]-&gt;get() . <span class="php-quote">&quot;';&quot;</span>;
</span><span id="459" class="l"><a class="l" href="#459">459: </a>        <span class="php-var">$db_sec</span>-&gt;get_query(<span class="php-var">$sql</span>);
</span><span id="460" class="l"><a class="l" href="#460">460: </a>        <span class="php-keyword1">if</span> (<span class="php-var">$db_sec</span>-&gt;total_error &gt; <span class="php-num">0</span>
</span><span id="461" class="l"><a class="l" href="#461">461: </a>            )<span class="php-var">$db_sec</span>-&gt;show_error();
</span><span id="462" class="l"><a class="l" href="#462">462: </a>        <span class="php-keyword1">if</span> (<span class="php-var">$db_sec</span>-&gt;get_record()) {
</span><span id="463" class="l"><a class="l" href="#463">463: </a>            <span class="php-var">$value</span> = <span class="php-var">$db_sec</span>-&gt;record[prefix] . <span class="php-var">$db_sec</span>-&gt;record[fname] . <span class="php-quote">' '</span> . <span class="php-var">$db_sec</span>-&gt;record[lname];
</span><span id="464" class="l"><a class="l" href="#464">464: </a>        }
</span><span id="465" class="l"><a class="l" href="#465">465: </a>        <span class="php-keyword1">return</span> <span class="php-var">$value</span>;
</span><span id="466" class="l"><a class="l" href="#466">466: </a>    }
</span><span id="467" class="l"><a class="l" href="#467">467: </a>
</span><span id="468" class="l"><a class="l" href="#468">468: </a>    <span class="php-keyword1">function</span> <a id="_get_sys_list" href="#_get_sys_list">get_sys_list</a>() {
</span><span id="469" class="l"><a class="l" href="#469">469: </a>        <span class="php-keyword1">global</span> <span class="php-var">$my_cfg_sec</span>;
</span><span id="470" class="l"><a class="l" href="#470">470: </a>        <span class="php-var">$db_sec</span> = <span class="php-keyword1">new</span> OrMysql(<span class="php-var">$my_cfg_sec</span>[db]); <span class="php-comment">//(กำหนด Object ฐานข้อมูลที่จะใช้)</span>
</span><span id="471" class="l"><a class="l" href="#471">471: </a>        <span class="php-var">$sql</span> = <span class="php-quote">&quot;SELECT `sys_id` FROM  `my_sys`;&quot;</span>;
</span><span id="472" class="l"><a class="l" href="#472">472: </a>        <span class="php-var">$db_sec</span>-&gt;get_query(<span class="php-var">$sql</span>);
</span><span id="473" class="l"><a class="l" href="#473">473: </a>        <span class="php-keyword1">if</span> (<span class="php-var">$db_sec</span>-&gt;total_error &gt; <span class="php-num">0</span>
</span><span id="474" class="l"><a class="l" href="#474">474: </a>            )<span class="php-var">$db_sec</span>-&gt;show_error();
</span><span id="475" class="l"><a class="l" href="#475">475: </a>        <span class="php-var">$sys_list</span> = <span class="php-keyword1">array</span>();
</span><span id="476" class="l"><a class="l" href="#476">476: </a>        <span class="php-keyword1">while</span> (<span class="php-var">$db_sec</span>-&gt;get_record()) {
</span><span id="477" class="l"><a class="l" href="#477">477: </a>            <span class="php-var">$sys_list</span>[<span class="php-var">$db_sec</span>-&gt;record[sys_id]] = <span class="php-var">$db_sec</span>-&gt;record[sys_id];
</span><span id="478" class="l"><a class="l" href="#478">478: </a>        }
</span><span id="479" class="l"><a class="l" href="#479">479: </a>        <span class="php-keyword1">return</span> <span class="php-var">$sys_list</span>;
</span><span id="480" class="l"><a class="l" href="#480">480: </a>    }
</span><span id="481" class="l"><a class="l" href="#481">481: </a>
</span><span id="482" class="l"><a class="l" href="#482">482: </a>    <span class="php-comment">//Event on class</span>
</span><span id="483" class="l"><a class="l" href="#483">483: </a>    <span class="php-keyword1">function</span> <a id="_OE_login" href="#_OE_login">OE_login</a>(<span class="php-var">$EV_</span>) {
</span><span id="484" class="l"><a class="l" href="#484">484: </a>        <span class="php-comment">/* $EV_user : string user login */</span>
</span><span id="485" class="l"><a class="l" href="#485">485: </a>        <span class="php-comment">/* $EV_login : true if login */</span>
</span><span id="486" class="l"><a class="l" href="#486">486: </a>        <span class="php-keyword2">extract</span>(<span class="php-var">$EV_</span>, EXTR_OVERWRITE);
</span><span id="487" class="l"><a class="l" href="#487">487: </a>        <span class="php-keyword2">eval</span>(<span class="php-var">$this</span>-&gt;OE_[login]-&gt;get());
</span><span id="488" class="l"><a class="l" href="#488">488: </a>        <span class="php-keyword1">return</span> <span class="php-keyword1">null</span>;
</span><span id="489" class="l"><a class="l" href="#489">489: </a>    }
</span><span id="490" class="l"><a class="l" href="#490">490: </a>
</span><span id="491" class="l"><a class="l" href="#491">491: </a>}
</span><span id="492" class="l"><a class="l" href="#492">492: </a>
</span><span id="493" class="l"><a class="l" href="#493">493: </a></span><span class="xlang">?&gt;</span></code></pre>

	<div id="footer">
		orr-projects API documentation generated by <a href="http://apigen.org">ApiGen 2.8.0</a>
	</div>
</div>
</div>
</body>
</html>
